Digital wallet application for mobile payment

ABSTRACT

The invention relates to a method implemented by a mobile device (DV) for managing a digital wallet application (DWA), initially configured with first data (DT1) of a mobile payment card (C1) for operating in a home payment network (H-NT), the method comprising: sending (S40) location information (LOC) of the mobile device; receiving (S48) roaming information (RI) identifying a roaming payment network (R-NT) available to the mobile device; selecting (S50) a roaming payment network (R-NT); obtaining (S68) a second data (DT2) allocated to the mobile payment card for operating in the selected roaming network; and configuring (S70) the digital wallet application so that it can use the mobile payment card in the roaming payment network. The invention also relates to a processing method implemented by a server for sending (S46) the roaming information (RI) and sending the second data (DT2).

BACKGROUND

The present disclosure relates generally to the field of mobileapplications for performing financial transactions, such as paymenttransactions. The disclosure relates more particularly, but notexclusively, to managing a digital wallet application in a mobile devicefor enabling a user to perform transactions, such as paymenttransactions, in a particular payment network.

Payments for products and services are often achieved using creditcards, debit cards or any other kind of payment card. Mobile paymentsystems based on mobile wallets are becoming more popular due to theconvenience of being able to make a payment or purchase from the user'smobile device or smart phone. Payment and service providers areproviding this functionality to users, usually by means of a mobileapplication (or applet) which is run on a mobile device. This mobileapplication allows a user to make payment through a credit card issueror bank, or through a third party payment provider.

Mobile payments using a mobile wallet typically involve a userregistering details of a payment card on a mobile device. The mobiledevice stores a mobile wallet which can be used to make payment usingthe payment card. In a mobile wallet payment transaction, a consumer maypresent his/her mobile device which provides details of the payment cardto the reader terminal of a merchant. The merchant then uses thisinformation to authorize the transaction.

Nowadays, mobile payment cards, just like actual payment cards, areconfigured to be compatible with specific payment networks (or bankingnetworks) within which they may be used to perform financialtransactions. Typically, a mobile payment card is configured in adigital wallet to operate in a national payment network in accordancewith the card issuer specifications. To this end, the digital walletapplication of the user is provided with card details (identifier, keys,parameters etc.) compatible with this national payment network. InFrance, for instance, the payment network known a “Banking Card” (or CB,standing for “Cartes Bancaires” in French) is the domestic paymentnetwork commonly used to perform a payment transaction using a mobilepayment card issued by a French bank.

However, roaming users may happen to be out of reach of the nationalpayment network their mobile payment card is configured to operate with.A user may face difficulties to perform a financial transaction, such asa payment, when roaming in a region where the available payment networksdo not accept the mobile payment card, for instance when roaming outsidea domestic area of the user.

The well-established standard for roaming payment today is to use aglobal payment network such as VISA™ or MASTERCARD™ payment networks.Such global networks are advantageous in that they cover widegeographical areas and thus offer an easily-accessible roaming paymentsolution to end users. However, the current payment networks may alsopresent drawbacks and using them for roaming payments is not alwayssatisfactory.

There is thus a need in the art for an efficient payment roamingsolution.

SUMMARY OF THE INVENTION

As mentioned above, a user roaming in different areas (e.g., changingcountries) may happen to be out of reach of a national payment networkhis/her mobile payment card is configured to operate with. Just like foractual payment cards, a mobile wallet may thus be configured to use amobile banking card in an international payment network when in asituation of roaming.

The well-established standard today for payment roaming is for users touse a single global payment network such as international paymentnetworks operated by VISA™ or MASTERCARD™.

However, a roaming user may not wish to use an international paymentnetwork for performing a payment transaction. Additionally, some actorsin the field of mobile payment solutions tend to promote the deploymentand use of national payment systems rather than international ones.

The present invention attempts to remedy the above-mentioned concernsand, more generally, to allow the use of a mobile payment card while auser is roaming. The invention provides for an efficient roaming mobilepayment solution.

To remedy the above-mentioned concerns, the present invention divergesfrom the current well-established practice of using a single globalpayment for performing roaming payments and instead provides a solutionbased on a new approach, i.e. rendering compatible two distinct patentnetworks (i.e. a home payment network and a roaming payment network) sothat they can cooperate with each other to allow payment roaming.

Today, the lack of interoperability between national payment networksresults from the different, often incompatible, specifications of eachpayment networks. While there is a global effort for implementing aworldwide standardised payment system, such a solution will likelyrequire considerable time and effort before it emerges.

The present invention provides an efficient solution for payment roamingby establishing interoperability between multiple payment networks,thereby allowing roaming payments to be made through a combination oftwo (or more) distinct payment networks instead of using a single globalpayment network as is the well-established practice today.

The invention provides a method implemented by a mobile device formanaging a digital wallet application, said digital wallet applicationbeing initially configured with a first set of data associated with amobile payment card for performing transactions in a home paymentnetwork, said method comprising the following steps:

-   -   sending an information request containing location information        representative of a current position of the mobile device;    -   receiving, in response to said information request, roaming        information identifying at least one other payment network,        so-called roaming payment network, which is available in the        current position of the mobile device;    -   selecting a roaming payment network based on said roaming        information;    -   obtaining a second set of data allocated to the mobile payment        card for operating in the selected roaming network; and    -   configuring said digital wallet application with said second set        of data so that it can use the mobile payment card in the        selected roaming payment network.

In a particular embodiment, the method comprises, once the configuringstep is completed, a step of performing a transaction (such as a paymenttransaction) using the mobile payment card in the selected roamingpayment network.

In a particular embodiment, said information request is sent upondetection that said mobile device is roaming out of reach of said homepayment network.

In a particular embodiment, the location information comprises at leastone of:

-   -   geographical information representative of a geographical        position of the mobile device; and    -   a network identifier indicating a cellular network, or a part        thereof, to which the mobile device is connected.

In a particular embodiment, the roaming information includes at leastone of:

-   -   parameters associated with at least one roaming bank network,        said parameters defining at least one of service rates and an        acceptance area; and    -   priority information defining a priority order according to        which each roaming payment network is to be selected by the        mobile device.

In a particular embodiment, the first set of data includes a firstidentifier of the mobile payment card in the home payment network,

wherein the step of obtaining step a second set of data includes:

-   -   sending, to a first server, a provisioning request for the        selected roaming payment network, said provisioning request        including said first identifier;    -   receiving, from the first server, the second set of data which        includes:        -   a roaming token allocated to the mobile payment card for            operating in the selected roaming payment network, and        -   an identifier of said roaming token.

In a particular embodiment, the first set of data includes a home tokencorresponding to a primary account number allocated to the mobilepayment card for operating in the home payment network.

In a particular embodiment, the method comprises, prior to the step ofsending the information request, a step of initially configuring whereinsaid mobile device:

-   -   obtains the primary account number allocated to said mobile        payment card for operating in the home payment network;    -   sends said primary account number to the first server; and    -   receives, in response to said primary account number, the first        set of data.

In a particular embodiment of the invention, the various steps of themethod according to the invention are specified by computer programinstructions.

Accordingly, the invention also provides a computer program on arecording medium, this computer program being arranged to be implementedby a device such as a mobile device, and more generally by a processor,this computer program comprising instructions adapted for theimplementation of a method for managing a digital wallet application asdefined above.

The invention also provides a non-transitory recording medium readableby a terminal, or more generally by a processor, this recording mediumcomprising computer program instructions as mentioned above recordedthereon.

The invention also concerns a processing method implemented by a firstserver in cooperation with a mobile device managing a digital walletapplication, said method comprising the following steps:

-   -   receiving an information request containing location information        representative of a current position of the mobile device;    -   determining, based on the location information, at least one        roaming payment network which may be accessed by the mobile        device;    -   sending, to the mobile device, roaming information identifying        said at least one roaming payment network;    -   receiving, from the mobile device, a provisioning request for a        roaming payment network selected by said mobile device among        said at least one roaming payment network;    -   obtaining a set of data, so-called second set of data, allocated        to the mobile payment card for operating in the selected roaming        payment network; and    -   sending the second set of data to the mobile device for        configuring the digital wallet application so that it can use        the mobile payment card in the selected roaming payment network.

In a particular embodiment, the location information comprises at leastone of:

-   -   geographical information representative of a geographical        position of the mobile device; and    -   a network identifier indicating a cellular network, or a part        thereof, to which the mobile device is connected.

In a particular embodiment, the first server determines said at leastone roaming payment network by consulting a database which storesnetwork information characterising at least one payment network whichcan be accessed in a respective area.

In a particular embodiment, the roaming information includes at leastone of:

-   -   parameters associated with at least one roaming bank network,        said parameters defining at least one of service rates and an        acceptance area; and    -   priority information defining a priority order according to        which each roaming payment network is to be selected by the        mobile device.

In a particular embodiment, the second set of data is different from afirst set of data with which the digital wallet application is initiallyconfigured, prior to the step of sending the second set of data, forperforming transactions in a home payment network different from saidroaming payment network.

In a particular embodiment, the provisioning request includes a firstidentifier of the mobile payment card in the home payment network, saidfirst identifier being part of said first set of data; and wherein thesecond set of data includes a roaming token of the mobile payment cardin the roaming payment network and a second identifier associated withthe roaming token.

In a particular embodiment, the step of obtaining the second set of dataincludes successively:

-   -   sending the first identifier of the mobile payment card to a        second server of a home token service provider;    -   receiving, from said second server, a home token of the mobile        payment card in the home payment network;    -   sending, to a third server of a roaming token service provider,        said home token; and    -   receiving, from said third server, the second set of data.

In a particular embodiment, the second set of data includes at least oneof:

-   -   visual parameters for configuring the visual appearance of the        digital wallet application to indicate that the mobile payment        card is used in the selected roaming banking device;    -   a roaming payment application to be installed in the mobile        device for interacting with the digital wallet application when        the mobile payment card is used in the roaming payment network;        and    -   an expiration date of the mobile payment card for the selected        roaming payment network.

In a particular embodiment of the invention, the various steps of theprocessing method according to the invention are specified by computerprogram instructions.

Accordingly, the invention also provides a computer program on arecording medium, this computer program being arranged to be implementedby a server, and more generally by a processor, this computer programcomprising instructions adapted for the implementation of a processingmethod as defined above.

The invention also provides a non-transitory recording medium readableby a server, or more generally by a processor, this recording mediumcomprising computer program instructions as mentioned above recordedthereon.

The various computer programs mentioned above can be expressed in anyprogramming language, and can be in the form of source code, objectcode, or any intermediary code between source code and object code, suchthat in a partially-compiled form, for instance, or in any otherappropriate form.

In addition, the recording medium previously mentioned can be anynon-transitory computer-readable medium, such as entity or devicecapable of storing the computer program. For example, the recordingmedium can comprise a storing means, such as a ROM memory (a CD-ROM or aROM implemented in a microelectronic circuit), or a magnetic storingmeans such as a floppy disk or a hard disk for instance.

Moreover, each recording medium previously mentioned can correspond to atransmittable medium, such as an electrical or an optical signal, whichcan be conveyed via an electric or an optic cable, or by radio or anyother appropriate means. The computer program according to the inventioncan in particular be downloaded from the Internet or a network of thelike.

Alternatively, the recording medium can correspond to an integratedcircuit in which a computer program is loaded, the circuit being adaptedto execute or to be used in the execution of the methods of theinvention.

The invention also concerns a mobile device for managing a digitalwallet application, comprising:

-   -   a localisation module for sending an information request        containing location information representative of a current        position of the mobile device, while the digital wallet        application is configured with a first set of data associated        with a mobile payment card for performing transactions in a home        payment network;    -   a receiving module for receiving, in response to said        information request, roaming information identifying at least        one other payment network, so-called roaming payment network,        which is available in the current position of the mobile device;    -   a selecting module for selecting a roaming payment network based        on said roaming information;    -   a data obtaining module for obtaining a second set of data        allocated to the mobile payment card for operating in the        selected roaming network; and    -   a configuring module for configuring said digital wallet        application with said second set of data so that it can use the        mobile payment card in the selected roaming payment network.

Still further, the invention concerns a server, so-called first server,configured to implement a processing method in cooperation with a mobiledevice managing a digital wallet application, comprising:

-   -   a localisation module for receiving an information request        containing location information representative of a current        position of the mobile device;    -   a determining module for determining, based on the location        information, at least one roaming payment network which may be        accessed by the mobile device;    -   a first sending module for sending, to the mobile device,        roaming information identifying said at least one roaming        payment network;    -   a request processing module for receiving, from the mobile        device, a provisioning request for a roaming payment network        selected by said mobile device among said at least one roaming        payment network;    -   a provisioning module for obtaining a set of data, so-called        second set of data, allocated to the mobile payment card for        operating in the selected roaming payment network; and    -   a second sending module for sending the second set of data to        the mobile device for configuring the digital wallet application        so that it can use the mobile payment card in the selected        roaming payment network.

The particular embodiments defined above with respect to the methodsapply in an analogous manner to the mobile device and to the firstserver of the present invention.

Where functional modules are referred to in the present disclosure forcarrying out various steps of the described methods, it will beunderstood that these modules may be implemented in hardware, insoftware, or a combination of the two. When implemented in hardware, themodules may be implemented as one or more hardware modules, such as oneor more application specific integrated circuits. When implemented insoftware, the modules may be implemented as one or more computerprograms that are executed on one or more processors.

Each step, which may be performed by a technical entity as described inthe present disclosure, may correspond to a specific functional module.A given functional module may be configured to perform a plurality ofsteps.

The present invention provides for an efficient roaming mobile paymentsolution. In particular, it allows efficient interoperability of mobilepayment cards with multiple payment networks that a user may accessusing his/her mobile device.

As mentioned earlier, a user roaming in different areas (e.g., changingcountries) may happen to be out of reach of a national payment networkhis/her mobile payment card is configured to operate with. The inventionallows configuring a digital wallet application so that it can use amobile payment card while in a situation of roaming in a given roamingpayment network. Thanks to the invention, it is possible to dynamicallyadapt the configuration of a digital wallet application so thattransactions can be made in a roaming payment system.

The invention obviates the need for an international payment network,for instance. When a user is roaming outside his national (or regional)payment network, a mobile bank transaction may be advantageouslyperformed in another national (or regional) payment network. Theinvention can ensure adequate interoperability between distinct paymentsystems having different specifications, such that using aninternational payment network is no longer required. Domestic bankingschemes can get international acceptance via roaming agreements withother banking schemes. Standard co-badge bi-lateral contacts andhost-to-host integrations can for instance be signed.

Thanks to the invention, a mobile device may automatically configure adigital wallet application depending on the mobile device's position.The parameters and visual aspects (logo, appearance . . . ) of thedigital wallet application may be adapted accordingly to inform the userof the roaming re-configuration. In particular, the card picture, logoand/or colours may be adapted as needed.

BRIEF DESCRIPTION OF THE DRAWINGS

The disclosure will be better understood and illustrated by means of thefollowing embodiment and execution examples, in no way limitative, withreference to the appended figures on which:

FIG. 1 is a schematic diagram representing the structure of, and stepsperformed by, an environment comprising a mobile device and a server ofhome token service provider, in accordance with a particular embodimentof the present invention;

FIG. 2 is a schematic diagram representing the structure of, and stepsperformed by, an environment comprising a mobile device in accordancewith a particular embodiment of the present invention;

FIG. 3 is a schematic diagram representing the structure of, and stepsperformed by, an environment comprising a mobile device and a server ofa token service operator, in accordance with a particular embodiment ofthe present invention;

FIG. 4A shows the structure of a mobile device in accordance with aparticular embodiment of the present invention;

FIG. 4B shows functional modules implemented by the mobile device ofFIG. 4A, in accordance with a particular embodiment of the presentinvention;

FIG. 5A shows the structure of a server of a token service operator inaccordance with a particular embodiment of the present invention;

FIG. 5B shows functional modules implemented by the server of FIG. 5A,in accordance with a particular embodiment of the present invention;

FIG. 6 is a schematic diagram representing the structure of, and stepsperformed by, an environment comprising a mobile device and a server ofa token service operator, in accordance with a particular embodiment ofthe present invention;

FIG. 7 is a schematic diagram representing the structure of, and stepsperformed by, an environment comprising a mobile device carrying out atransaction, in accordance with a particular embodiment of the presentinvention;

FIG. 8 is a schematic diagram representing an alternative embodiment ofFIG. 7;

FIG. 9A shows the structure of a server of a roaming token serviceprovider in accordance with a particular embodiment of the presentinvention;

FIG. 9B shows functional modules implemented by the server of FIG. 9A,in accordance with a particular embodiment of the present invention;

FIG. 10A shows the structure of a server of a home token serviceprovider in accordance with a particular embodiment of the presentinvention;

FIG. 10B shows functional modules implemented by the server of FIG. 10A,in accordance with a particular embodiment of the present invention; and

FIGS. 11-15 are schematic diagrams representing particular embodimentsof the present invention.

In the FIGS. 1-15, some represented blocks are purely functionalentities, which do not necessarily correspond to physically separateentities. Namely, they could be developed in the form of software,hardware, or be implemented in one or several integrated circuits,comprising one or more processors.

For simplicity and clarity of illustration, the same reference numeralswill be used throughout the figures to refer to the same orcorresponding elements, unless indicated otherwise.

The components in the figures are not necessarily to scale, emphasisinstead being placed upon illustrating the principles of the invention.

DESCRIPTION OF PARTICULAR EMBODIMENTS OF THE INVENTION

While the present disclosure is susceptible of embodiment in manydifferent forms, there are shown in the drawing and will be describedherein in detail specific embodiments thereto with the understandingthat the present disclosure is to be considered as an exemplification ofthe principles of the disclosure and is not intended to limit thedisclosure to the specific embodiments illustrated. Instead, the scopeof the invention is defined by the appended claims.

Many specific details of the invention are set forth in the followingdescription and in the FIGS. 1-10B. One skilled in the art, however,will understand that the present invention may have additionalembodiments, or that the present invention may be practiced without someof the details described in the following description. In otherinstances, well-known methods, procedures, and components have not beendescribed in detail to avoid obscuring the embodiments describedtherein.

The present invention provides for a mobile device, server, system andcorresponding methods for allowing a transaction to be performed in anefficient manner using a mobile payment card. More particularly, theinvention allows for roaming payment transactions using a digital walletprovided with a mobile payment card in a mobile device. The inventionaims at allowing efficient interoperability between multiple paymentsystems such that a same mobile payment card can be used easily withdifferent payment networks, such as national or regional paymentnetworks for instance.

FIG. 1 shows an environment, according to a particular embodiment of theinvention, comprising a mobile device DV, a digital wallet providerserver DWP, a server H-TSP of a home token service provider and a readerterminal T.

The mobile device DV may be used by a user UR to perform paymenttransactions in a payment network. To this end, the mobile device DVimplements a digital wallet application (or applet) DWA capable of usingdata of a mobile payment card to perform mobile payments. In the initialstate shown in FIG. 1, the digital wallet application DWA is configuredwith a first set of data DT1 associated with a mobile payment card C1.This digital wallet application can retrieve and use the data DT1 storedin the mobile device DV to perform transactions in a home paymentnetwork H-NT (or home payment system).

The mobile payment card C1 is a virtual (or digital) card which can bedisplayed on a screen of the mobile device DV and which can be used in adematerialised form to complete financial transactions, such as paymenttransactions.

In the present document, embodiments are described in the context ofpayment transactions, although the invention is not limited thereto andapplies more generally to any kind of mobile banking (or financial)transaction.

The mobile device DV may be a smart phone, a tablet or any suitablemobile communication device equipped with processing resources formanaging the digital wallet application DWA. In the example embodimentscontemplated in the present document, the mobile device is a smart phoneor an equivalent apparatus. This smart phone may communicate over acellular network using authenticating data stored in a SIM card or thelike.

As shown in FIG. 1, the mobile device DV may also implement a paymentapplication PA1 which can be used in cooperation with the digital walletapplication DWA to perform operations (configuration, paymenttransaction . . . ) with respect to the mobile payment card C1.

FIG. 1 illustrates, in accordance with a particular embodiment of theinvention, how the digital wallet application DWA can be initiallyconfigured with the set of data DT1 corresponding to the mobile paymentcard C1.

In a step S2, the mobile device DV retrieves a primary account number(or payment card number) PAN, designated as C-PAN, allocated to themobile payment card C1 for operating in the home payment network H-NT.The primary account number is a well-known identifier of a payment card,sometimes referred to as payment card number. This number identifies theissuer of the card. This primary account number (or identifier) C-PANmay be stored in the mobile device DV so that it can be retrieved by thedigital wallet application DWA in step S2.

The mobile device DV, under control of the digital wallet applicationDWA, then sends (S2) the C-PAN to the server DWP of a digital walletservice provider.

The server DWP transmits (S6) the payment card's account number C-PAN tothe server H-TSP of the home token service provider. This server H-TSPis in charge of providing cardholders with a digital token to be used inreplacement of the PAN number. A PAN is a sensitive data and, therefore,the diffusion thereof should be limited for a matter of security.

In response to the account number C-PAN, the server H-TSP returns (S6)the first set of data DT1 which is received by the server DWP andforwarded (S8) to the mobile device DV. The set of data DT1 includes ahome token H-PAN allocated to the mobile payment card C1 to operate withthe home payment network H-NT. The first set of data DT1 may compriseadditional data such as an identifier H-PANID corresponding to the hometoken H-PAN.

Additionally, the server H-TSP stores (S5), in a database for instance,the home token H-PAN in association with the account number C-PANreceived from the digital wallet application DWA.

The home token H-PAN, which may take any appropriate digital form (suchas a code, a sequence of characters etc.), is a less sensitive data thanthe primary account number C-PAN. The home token H-PAN can be restrictedin use only in a particular device and specified transaction environment(so called transaction domain restrictions). The home token H-PAN can beused by the digital wallet application DWA instead of the account numberC-PAN, thereby allowing for a more secure payment system.

In a step S10, the mobile device DV configures the digital walletapplication DWA with the received first set of data DT1 for enabling itto perform payment transactions in the home payment network H-NT. Aspart of this configuration, the mobile device DV may personalise thevisual aspect (card picture, logo, colours etc.) of the graphical userinterface (GUI) of the digital wallet application DWA with visualparameters included in the first set of data DT1 provided by the serverH-TSP.

Additionally, the mobile device DV stores (S10) the set of data DT1 forlater retrieval by the digital wallet application DWA.

Once this initial configuration is completed, the user UR is able to usethe digital wallet application DWA run on the mobile device DV tocomplete a payment transaction in the home payment network H-NT. To thisend, the user UR may present the mobile device DV near a paymentterminal T of a merchant, as shown in FIG. 1. The mobile device DV maycooperate (S12) with the payment terminal T in any appropriate manner toperform a mobile payment. In particular, the mobile device DV transmitsthe first set of data DT1, or at least the home token H-PAN, so that thetransaction can be authenticated by the terminal T. As mentionedearlier, transmission of the sensitive primary account number C-PAN canbe avoided as it is the home token H-PAN which is used instead.

FIG. 2 depicts, in accordance with a particular embodiment of theinvention, how a payment transaction can be performed by the mobiledevice DV using the mobile payment card C1 in the home payment networkH-NT.

In a step S12, the mobile device DV sends the home token H-PAN topayment terminal T, as already described above with respect to FIG. 1.Other information included in the first set of data DT, such as theexpiring date of the payment card C1, can be transmitted along to theterminal T.

In a particular example, the mobile device DV and the payment terminal Tcooperate (or interact) with each other according to the EMV standard(“Europay, MasterCard, and Visa”) or proprietary that may or may not bederived from EMV, to perform the payment transaction. This can be madethrough a contactless communication between the mobile device DV and theterminal T, using for instance NFC interfaces or the like (Bluetooth . .. ).

During this interaction S12, the digital wallet application DWA mayinteract with the payment application PA1 deployed by the issuing bankof the payment mobile card C1.

The payment terminal T, positioned for instance in a point of sale of amerchant, then transmits (S22) transaction data DR1 to the bank systemAC of the acquirer (e.g., the merchant's bank). The transaction data DR1contains any data (date, transaction amount . . . ) characterising thepayment transaction for allowing further processing such asauthentication, validation . . . . In particular, the transaction dataDR1 includes the home token H-PAN provided by the digital walletapplication DWA of the mobile device DV.

In step S24, the bank system AC of the acquirer transmits thetransaction data DR1 to a routing server H-SV of the home paymentnetwork H-NT. This server H-SV forwards (S26) the home token H-PAN tothe server H-TSP of the home token service provider.

The server H-TSP then determines (S27) the primary account number C-PANstored (see S5 in FIG. 1) in association with the home token H-PANreceived in S26, and returns (S28) this account number C-PAN to theserver H-SV.

In step S30, the server H-SV forwards, to the bank system IS of anissuer, the primary account number C-PAN along with any other usefulinformation that may have been received in the transaction data DR1(amount, date . . . ). The issuer IS, which is for instance the issuingbank of the mobile payment card C1, may then process the paymenttransaction based on the primary account number C-PAN allocated to themobile payment card C1 to operate with the home payment network H-NT.

As described above, the home payment network H-NT, and more particularlythe server H-TSP, allows for a detokenization process thereby obtaininga PAN identifier from a digital token.

In the present example, the bank system AC of the acquirer, the serversH-SV and H-TSP, and the bank system IS of the issuer are all part of thehome payment network H-NT, as shown in FIG. 2.

Thanks to the first set of data DT1 provisioned to the digital walletapplication DWA, the user UR may thus use the mobile payment card C1 inthe home payment system. The term “home” in this context is merely usedas a convention to designate a payment network or system with which thedigital wallet application DWA is initially compatible with forperforming a payment transaction using the data of the mobile paymentcard C1. It is typically the issuer of the mobile payment card whichdefines which payment system(s) correspond(s) to the home paymentsystem(s) of the card.

However, it should be noted that the transaction may only be performedbetween the mobile device DV and the payment terminal T if both devicesare configured in a compatible manner. In other words, the transactioncan be successfully processed only if the payment terminal T is alsoconfigured to operate in the home payment network H-NT. If the paymentterminal T is part of a different payment network, having specificationsincompatible with those of the home payment network, the transactionwill fail. This may happen for instance when a roaming mobile payment isattempted using the mobile payment device C1, while the mobile device DVis roaming outside the home payment network H-NT.

If, for instance, the mobile device DV is roaming and the digital walletapplication DWA attempts a transaction with a payment terminal attachedto a roaming payment network incompatible with the present configurationof the digital wallet application DWA, the transaction will fail.

An aim of the invention is to overcome these problems.

FIG. 3 shows, in accordance with a particular embodiment of theinvention, an environment comprising the mobile device DV and thedigital wallet server DWP as described above with respect to FIGS. 1 and2, along with a server TSO of a token service operator which may accessa database DB1.

A detailed implementation of the mobile device DV, in accordance with aparticular embodiment of the present invention, will be described laterwith respect to FIGS. 4A and 4B. Likewise, a detailed implementation ofthe server TSO, in accordance with a particular embodiment of thepresent invention, will be described later with respect to FIGS. 5A and5B.

As shown in FIG. 3, it is assumed that the user UR is roaming such thatthe mobile device DV is out of reach of the home payment network H-NT.FIG. 3 depicts how the digital wallet application DWA may detects aroaming payment network, other than the home payment network H-NT, whichmay be access to perform payment transactions.

In a step S40, the mobile device DV sends an information requestcontaining location information LOC representative of the mobile deviceDV's current position. In the present example, the sending S40 of thisinformation request is commanded by the digital wallet application DWA.

In a particular example, the digital wallet application DWA triggers thesending of this information request upon detection that the mobiledevice DV is roaming outside (i.e. out of reach of) the home paymentnetwork H-NT. For instance, the cardholder UR is roaming in a roamingarea (or country), that is, an area (or country) other than a predefinedarea within which the home payment network H-NT can be accessed.

In a particular example, the digital wallet application DWA triggers thesending (S40) of this information request upon detection that the mobiledevice DV is roaming in a cellular network other than a predefined homecellular network. To this end, the digital wallet application DWA maymonitor the cellular network to which the mobile device DV is attached.For instance, when the user UR is roaming abroad, the mobile device DVmay attach to a roaming cellular network distinct from a home cellularnetwork. Based on the identifier of this roaming cellular network, themobile device DV (or more particularly the digital wallet applicationDWA) may determine that the home payment network can no longer beaccessed and thus triggers the sending (S40) of the information request.

In a particular example, the digital wallet application DWA triggers thesending (S40) of the information request upon detection that the mobiledevice DV is outside a predefined geographical area, designated as homearea. To this end, the digital wallet application DWA may monitor thegeographical position of the mobile device DV, using for instance alocalisation module 14 as described later with respect to FIGS. 4A and4B. For instance, when detecting that the mobile device DV is roaming inGermany, and thus outside France which is predefined as the home area,the digital wallet application DWA may determine that the home paymentnetwork can no longer be accessed and thus triggers the sending (S40) ofthe information request.

As mentioned earlier, the information request comprises locationinformation LOC representative of the mobile device DV's currentposition. The location information may comprise at least one of:

-   -   geographical information (e.g., GPS coordinates, country, area,        city etc.) representative of a geographical position of the        mobile device DV; and    -   a network identifier indicating a cellular network, or a part        thereof, to which the mobile device DV is connected.

The current position represented by the location information LOC may bea last known position detected by the mobile device DV.

The digital wallet application DWA may monitor the geographical ornetwork position of the mobile device DV and compare it with predefinedlocation criteria. Based on the comparison result, the digital wallapplication DWA determines whether the information request containingthe location information LOC must be sent in S40.

In the present example, the mobile device DV sends (S40) the informationrequest to the digital wallet server DWP which then forwards (S42) it tothe server TSO of the token server operator. As will be seen in theembodiments described therein, the server TSO is in charge of handlingtokens which are provided to the digital wallet application DWA andlater used in payment transactions.

In a step S44, the server TSO determines, based on the locationinformation LOC, at least one roaming payment network which may be usedor accessed by the mobile device DV, and more particularly by thedigital wallet application DWA. In other words, the server TSOdetermines one or more roaming payment networks which are available tothe user for performing payment transactions while roaming at theposition corresponding to the location information LOC. To do so, theserver TSO may consult the database DB1 which stores a list of at leastone payment network in association with a particular location or area.As mentioned above, the mobile device's location may be defined at acellular network level and/or at a geographical level. The database DB1may store network information characterising at least one paymentnetwork which can be accessed in a respective area.

According to the present embodiment, particular roaming agreements maybe made between banks and payment scheme operators all over the world.Domestic schemes may get international acceptance via roaming agreementswith other schemes by signing co-badge bi-lateral contacts and host tohost integrations, as will be more apparent hereafter.

In the present example, it is assumed that the server TSO identifies(S44) three roaming payment networks which can be potentially used bythe digital wallet application for the purpose of payment transactions.Accordingly, the server TSO sends back (S46) roaming information RI tothe digital wallet server DWP, this roaming information RI identifyingthe plurality of roaming payment networks identified as available inS44. In the present case, the roaming information includes identifiersID1, ID2 and ID3 of the three respective roaming payment networksidentified by the server TSO.

In a step S48, the digital wallet server DWP forwards the roaminginformation RI to the mobile device DV.

Based on the roaming information RI, the digital wallet application DWAthen selects (S50) a roaming payment network (or roaming paymentsystem), noted R-NT, among the three selectable options ID1-ID3identified by the server TSO. The roaming information RI provided by theserver TSO may include, in addition to the identifiers ID1-ID3, anyother information that may help the digital wallet application DWA inits process of selecting a roaming payment network.

In the present case, the roaming payment network R-NT selected (S50) bythe digital wallet application DWA is different from the home paymentnetwork H-NT with which it was initially configured to operate with.

In a particular example, the roaming information RI includes variousinformation characterising the available roaming payment networks, suchas interchange rates (fee structure), parameters etc.

In a particular example, the roaming information includes at least oneof:

-   -   parameters associated with at least one roaming bank network,        said parameters defining at least one of service rates and an        acceptance area; and    -   priority information defining a priority order according to        which each roaming payment network is to be selected by the        mobile device DV.

In the present example, the roaming information RI includes priorityinformation which defines the roaming payment network R-NT as thenetwork to be selected in priority by the digital wallet applicationDWA. The priority information may define a priority order according to aplurality of roaming payment networks R-NT should be selected. In theroaming information RI, multiple priority values may be assigned to eachavailable roaming payment networks as a function of criteria such as thedate, the type of transaction to be made etc.

In the present invention, the way the roaming payment network isselected by the digital wallet application DWA can be dynamicallyadapted over time depending on various factors. In particular, thedatabase DB1 may be regularly updated to modify the roaming paymentnetworks which are presented as options to a digital wallet applicationat a particular location. The criteria upon which the digital walletapplication DWA makes its selection S50 may also be adapted over time.

The selection S50 may be completely automatic or may requireconfirmation by the user UR.

In a particular example, the roaming information RI identifies only asingle roaming payment network.

Furthermore, the server TSO may be configured to perform a pre-selectionof roaming payment networks available to the user UR among a pluralityof possible roaming payment networks. This pre-selection can be madebased on the identity of the mobile device DV or of the user.

In a particular example, the digital wallet application DWA commands themobile device DV to send in step S40 the home token H-PAN along with thelocation information LOC (FIG. 3). The home token H-PAN and the locationinformation LOC are transferred (S42) by the digital wallet server DWPto the server TSO. In step S44, the server TSO takes into account thelocation information LOC and the home token H-PAN to determine the atleast one roaming payment network which may be used or accessed by themobile device DV, and more particularly by the digital walletapplication DWA. The home token H-PAN enables the server TSO to checkwhich roaming payment network the user UR is authorised to access anduse with his/her mobile payment card C1. In a particular example, theserver TSO may consult the database DB1 which indicates, for eachexisting payment network at a particular location, whether accessthereto is authorised for the user UR of the mobile payment card C1. Theserver TSO may then identify (S46, FIG. 3) in the roaming information RIonly the existing roaming payment network(s) that the user is authorisedto access. In a variant, an identifier of the mobile device DV, such asa MAC identifier for instance, is sent (S40) by the mobile device DV andused (S44) as a roaming payment network selection criterion instead ofthe home token H-PAN.

As described above in the present embodiment, the mobile device DV sends(S40) the information request containing the location information LOC tothe digital wallet server DWP which forwards it to the server TSO. Otherembodiments are however possible.

In a variant, the mobile device DV sends directly the informationrequest to the server TSO, without passing through the digital walletserver DWP. In this case, the digital wallet application DWA maycooperate with the payment application PA1 within the mobile device DV.The server H-TSP may serve as a routing interface between the mobiledevice DV and the server TSO. In another variant, a TSO mobileapplication (not shown) originating from the token service operator maybe implemented in the mobile device DV and may cooperate with thedigital wallet application DWA. In this case, this TSO mobileapplication may allow the mobile device DV to interact directly with theserver TSO to send (S40) the information request and receive (S48) inreturn the roaming information RI.

FIG. 4A shows, in accordance with a particular embodiment of theinvention, the structure of the mobile device DV already describedabove. In this example, the mobile device DV presents the hardwarearchitecture of a smart phone, or more generally of a computer. Inparticular, the mobile device DV comprises a processor 2, a rewritablenon-volatile memory 4 (e.g., a Flash), a RAM memory 6, a firstcommunication interface 8, a second communication interface 10 and ahuman-to-machine interface 12. Some elements typically included in asmart phone have been voluntarily omitted in the present embodiment toenhance clarity of the present disclosure.

The rewritable non-volatile memory 4 of the mobile device DV constitutesa non-transitory recording medium in accordance with a particularembodiment of the invention. This memory includes a computer program PG1according to a particular embodiment of the invention, this computerprogram comprising instructions to implement a method according to aparticular embodiment of the invention. In the present example, thecomputer program PG1 correspond to the digital wallet application DWAimplemented in the mobile device DV.

The rewritable non-volatile memory 4 may also store the first set ofdata DT1 provisioned by the server H-TSP of the home token serviceprovider, as described above with reference of FIG. 1. In the presentexample, the data DT1 includes the home token H-PAN and an identifierH-PANID associated with the home token H-PAN.

Still further, the memory 4 may store a second set of data DT2 as willbe described later.

The memory 4 may also store a computer program to implement the paymentapplication PA1.

The first interface 8 is a communication interface that is used by themobile device DV to communicate over a cellular phone network. Anyappropriate mobile communication standard such as 3G, 4G, LTE etc. canbe contemplated in the present case.

The second interface 10 is a contactless interface to performcontactless communication with payment terminals, such as terminal Tdepicted in FIG. 1. This interface 10 may be an NFC interface, aBluetooth interface or the like. The mobile device 10 may use thissecond interface 10 to perform a payment transaction with a paymentterminal.

The human-to-machine interface may include any appropriate means(screen, keyboard . . . ) allowing the user UR to command and interactwith the mobile device DV, and more particularly with the digital walletapplication DWA.

The processor 2, piloted by the computer program PG1, implements anumber of functional modules as depicted in FIG. 4B, that is: alocalisation module MD2, a receiving module MD4, a selecting module MD6,a data obtaining module MD8, a configuring module MD10 and an executingmodule MD12.

The sending module MD2 is configured to send an information requestcontaining location information LOC representative of a mobile device'scurrent position, as already described with respect to FIG. 3.

The receiving module MD4 is configured to receive, in response to theinformation request, roaming information RI identifying at least oneroaming payment network R-NT (other than the home payment network H-NT)which is available in the current position of the mobile device DV, asalready described with respect to FIG. 3.

The selecting module MD6 is configured to select a roaming paymentnetwork R-NT based on the received roaming information RI, as alreadydescribed with respect to FIG. 3.

The data obtaining module MD8 is configured to obtain a second set ofdata DT2 allocated to the mobile payment card C1 for operating in theselected roaming network R-NT, as will be described below with respectto FIG. 6.

The configuring module MD10 is configured to configure the digitalwallet application DWA with the second set of data DT2 so that it canuse the mobile payment card C1 in the selected roaming payment networkR-NT, as will be described below with respect to FIG. 6.

The executing module MD12 is configured to perform a payment transaction(or any other appropriate banking transaction) using the mobile paymentcard C1 in the selected roaming payment network R-NT, as will bedescribed below with respect to FIG. 7-10B.

These modules MD2-MD12 only constitute a non-limitative embodiment ofthe present invention.

FIG. 5A shows, in accordance with a particular embodiment of theinvention, the structure of the server TSO already described above. Inthis example, the server TSO presents the hardware architecture of acomputer. In particular, the server TSO comprises a processor 20, arewritable non-volatile memory 22 (e.g., a Flash), a RAM memory 24, adatabase 26 and a communication interface 28. Some elements typicallyincluded in a server have been voluntarily omitted in the presentembodiment to enhance clarity of the present disclosure.

The rewritable non-volatile memory 22 of the server TSO constitutes anon-transitory recording medium in accordance with a particularembodiment of the invention. This memory includes a computer program PG2according to a particular embodiment of the invention, this computerprogram comprising instructions to implement a method according to aparticular embodiment of the invention.

The database 26 includes roaming payment network information defining alist of at least one selectable roaming payment network in associationwith a particular position (cellular network, geographical position . .. ). As described earlier with respect to FIG. 3, database 26 stores theidentifiers ID1, ID2 and ID3 of three respective roaming paymentnetworks, in association with a current position of the mobile deviceDV.

The interface 28 is a communication interface that is used by the serverTSO to communicate with the digital wallet server DWP or, in a variant,directly with the mobile device DV over a cellular network.

The processor 20, piloted by the computer program PG2, implements anumber of functional modules as depicted in FIG. 5B, that is: alocalisation module MD20, a determining module MD22, a first sendingmodule MD24, a request processing module MD26, a provisioning moduleMD28 and a second sending module MD30. In a particular example, theprocessor 20 further implements a connecting module MD32.

The localisation module MD20 is configured to receive, from the mobiledevice DV, an information request containing location information LOCrepresentative of a mobile device DV's current position, as alreadydescribed with respect to FIG. 3.

The determining module MD22 is configured to determine, based on thelocation information, at least one roaming payment network which may beaccessed by the mobile device DV, as already described with respect toFIG. 3.

The first sending module MD24 is configured to send, to the mobiledevice DV, roaming information RI identifying the at least one roamingpayment network determined by the determining module MD22, as alreadydescribed with respect to FIG. 3.

The request processing module MD26 is configured to receive, from themobile device DV, a provisioning request RQ1 for the roaming paymentnetwork R-NT selected by the mobile device DV among said at least oneroaming payment network, as will be described in more detail later.

The provisioning module MD28 is configured to obtain a second set ofdata DT2 allocated to the mobile payment card C1 for operating in theselected roaming payment network R-NT, as will be described in moredetail later.

The second sending module MD30 is configured to send the second set ofdata DT2 to the mobile device DV for configuring the digital walletapplication DWA so that it can use the mobile payment card C1 in theselected roaming payment network R-NT.

The connecting module MD32 is configured to connect with each other thehome payment network H-NT and the selected roaming payment network R-NTwhile a payment transaction is being processed, as described in moredetail in the particular example of FIG. 8.

These modules MD20-MD32 only constitute a non-limitative embodiment ofthe present invention.

In a particular embodiment, the invention can be implemented usingsoftware and/or hardware components. In this context, the term “module”can refer in this document to a software component, as well as ahardware component or a plurality of software and/or hardwarecomponents.

Once the selection step S50 as represented in FIG. 3 is completed, thedigital wallet application DWA has identified the roaming paymentnetwork R-NT that is to be used at the current location of the mobiledevice DV. Data provisioning is then performed as represented in FIG. 6,in accordance with a particular embodiment of the invention.

More particularly, the digital wallet application DWA commands themobile device DV to send (S60) a provisioning request RQ1 for theroaming payment network R-NT that was previously selected in S50. In thepresent embodiment, the provisioning request RQ1 is sent by the mobiledevice DV to the digital wallet server DWP which forwards (S62) it tothe server TSO of the token service operator.

The provisioning request RQ1 transmitted via the digital wallet serverDWP to the server TSO includes the identifier H-PANID which waspreviously stored as part of data DT1 by the mobile device DV in S10(FIG. 1). As already mentioned, by using this identifier H-PANID,diffusion of the token H-PAN (which is a sensitive data) can be avoided.

In the present example, the provisioning request RQ1 also includes theidentifier ID1 of the selected roaming payment network R-NT. Based onthis identifier ID1, the server TSO detects that the roaming paymentnetwork is selected.

In a step S64, the server TSO determines a second set of data DT2,different from the first set of data DT1, allocated to the mobilepayment card C1 for operating in the selected roaming payment networkR-NT. A particular way for the server to obtain the data DT2 is nowdescribed although others embodiments are possible.

In a step S64 a, the server TSO sends the identifier H-PANID, extractedfrom the provisioning request RQ1, to the server H-TSP of the homeservice provider. The server H-TSP then determines (S64 b) the hometoken H-PAN corresponding to the identifier H-PANID. As alreadyexplained with respect to FIG. 1 (step S5), the server H-TSP mayretrieve information including the couple [H-PAN, H-PANID] for themobile payment card C1.

In a step 564 c, the server H-TSP returns the corresponding home tokenH-PAN to the server TSO, which then forwards (S64 d) it to a serverR-TSP of a roaming token service provider. In a particular example, theserver TSO determines the server R-TSP to which the home token H-PAN isto be sent based on the selected roaming payment network R-NT identifiedas such in the provisioning request RQ1. The server TSO may for instanceaccess a list wherein the server R-TSP is defined in association withthe identifier ID1 of the roaming payment network R-NT.

In a step S64 e, the server R-TSP determines, based on the received hometoken H-PAN, the second set of data DT2 which is to be provisioned tothe digital wallet application DWA. In addition, the server stores (564e) the received home token H-PAN in association with the second set ofdata DT2.

The server R-TSP returns back (S64 d) the second set of data DT2 to theserver TSO which then forwards (S62) it to the digital wallet serverDWP. The second set of data DT2 is finally transmitted (S68) by thedigital wallet server DWP to the mobile device DV.

This second set of data DT2, different from the first set DT1, isallocated to the mobile payment card to operate in the selected roamingpayment network R-NT. To this end, the data DT2 includes a roaming tokenR-PAN and may also include a corresponding identifier R-PANID.

The roaming token R-PAN, which may take any appropriate digital form(such as a code, a sequence of characters etc.), is a less sensitivedata than the payment card's account number C-PAN. The roaming tokenR-PAN can be used by the digital wallet application DWA instead of theaccount number C-PAN, thereby allowing for a more secure payment system.

In a step S70, the mobile device DV configures the digital walletapplication DWA with the received second set of data DT2 for enabling itto perform payment transactions in the selected roaming payment networkR-NT. In step S70, the mobile device DV stores for instance the secondset of data DT2 in its memory 4 (FIG. 4A).

As part of this configuration S70, the mobile device DV may personalisethe visual aspect of the graphical user interface (GUI) of the digitalwallet application DWA with visual parameters R-PRM which may be alsoincluded in the second set of data DT2 provisioned by the server TSO. Asa result, the visual configuration (e.g., card picture, logo and/orcolours) of the GUI of the digital wallet application DWA can be adaptedto reflect the roaming payment system that is used. The user UR may theneasily realise that his digital wallet application DWA is configured ina roaming operation mode. In other words, the visual parameters R-PRMare for configuring the visual appearance of the digital walletapplication DWA to indicate that the mobile payment card C1 is used inthe selected roaming banking device.

In a particular example, the second set of data DT2 may comprise aroaming payment application (other than AP1) to be installed in themobile device DV for cooperating (interacting) with the digital walletapplication DWA when the mobile payment card C1 is used in the roamingpayment network R-NT. Accordingly, as part of the configuration S70, themobile device DV may install the roaming payment application forallowing adequate processing of a payment transaction while roaming inthe roaming payment network.

Once this configuration S70 is completed, the user UR is able to use thedigital wallet application DWA run on the mobile device DV to complete apayment transaction in the roaming payment network R-NT. To this end,the user UR may present the mobile device DV near a payment terminal Tof a merchant, as shown in FIG. 6. The mobile device DV may cooperate(S80) with the payment terminal T in any appropriate manner to perform amobile payment. In particular, the mobile device DV transmits the secondset of data DT2, or at least the roaming token R-PAN, so that thetransaction can be authenticated by the terminal T. As mentionedearlier, transmission of sensitive data such as the account number C-PANcan thus be avoided.

FIG. 11 depicts a variant of the particular embodiment described abovewith reference to FIG. 6. The variant of FIG. 11 differs from FIG. 6 inthat, when the server TSO receives in S64 c the home token H-PAN, it hasalready acquired and stored the corresponding second set of data DT2. Atoken service provider may for instance provide in advance the serverTSO with a set of data including the second set of data (roaming tokenR-PAN . . . ). This set of data DT2 is then stored in a memory of theserver TSO and retrieved by the server TSO once the H-PAN is received(S64 c) from the server H-TSP. In other words, the server TSO and theserver R-TSP form one and same server (the server TSO plays the role ofserver R-TSP). There is thus no need for the server TSO to interrogatethe remote server R-TSP as depicted in FIG. 6 (564 d, 564 f).

FIG. 7 depicts, in accordance with a particular embodiment of theinvention, how a payment transaction can be performed by the mobiledevice DV using the mobile payment card C1 in the roaming paymentnetwork R-NT, once the configuration S70 (FIG. 6) with the data DT2 iscompleted.

In step S80, as already described with respect to FIG. 6, the mobiledevice DV sends the roaming token R-PAN to the payment terminal T. Otherinformation included in the second set of data DT2, such as the expiringdate of the payment card C1, can be transmitted along to the terminal T.

The interaction S80 between the mobile device DV and the paymentterminal T may proceed in an analogous manner as the interaction S12described with respect to FIG. 1. In a particular example, the mobiledevice DV and the payment terminal T cooperate with each other accordingto the EMV standard to perform the payment transaction. This can be madethrough a contactless communication between the mobile device DV and theterminal T, using for instance NFC interfaces or the like (Bluetooth, QRCode . . . ).

During this interaction S80, the digital wallet application DWA mayinteract with the payment application PA1 deployed by the issuing bankof the payment mobile card C1 or with another payment application (notshown), so-called roaming payment application, implemented in the mobiledevice DV and destined to be used for transactions in the roamingpayment network R-NT.

The payment terminal T, positioned for instance in a point of sale of amerchant, then transmits (S82) transaction data DR2 to the bank systemAC of the acquirer (e.g., the merchant's bank). The transaction data DR2contains any data (date, transaction amount . . . ) characterising thepayment transaction for allowing further processing such asauthentication, validation . . . In particular, the transaction data DR2includes the roaming token R-PAN provided by the digital walletapplication DWA of the mobile device DV.

In a step S84, the bank system AC of the acquirer transmits thetransaction data DR2 to a routing server R-SV of the roaming paymentnetwork R-NT. This server R-SV forwards (S86) the roaming token R-PAN tothe server R-TSP of the roaming token service provider (as already shownin FIG. 6). In this example, the bank system AC of the acquirer, theservers R-SV and the server R-TSP are part of the roaming paymentnetwork R-NT.

In a first detokenization step S88, the server R-TSP obtains (ordetermines), based on the roaming token R-PAN, the home token H-PANallocated to the mobile payment card C1 for operating in the homepayment network H-NT (different from the roaming payment network R-NT).To this end, the server R-TSP may retrieve the home token H-PAN from theinformation previously stored in association with the roaming tokenR-PAN in step S64 e (FIG. 6).

The server R-TSP returns (S90) the home token H-PAN to the server R-SVwhich forwards (S92) it, as part of a transaction request, to a serverH-SV of the home payment network. In the present embodiment, this ispossible because the home payment network H-NT and the roaming paymentnetwork R-NT are connected via a host-to-host (or server-to-server)connection. This host-to-host connection means that there is a directconnection between the two servers R-SV and H-SV. No intermediarynetwork or switch is positioned between the servers R-SV and H-SV toensure communication.

The server H-SV forwards (S94) the roaming token H-PAN to the serverH-TSP of the home token service provider (as already shown in FIG. 6).

In a second detokenization step S96, the server H-TSP obtains (ordetermines), based on the home token H-PAN, the PAN number C-PAN of themobile payment card C1 allocated by the bank issuer. To this end, theserver H-TSP may retrieve the primary account number C-PAN from theinformation previously stored in association with the home token H-PANin step S5 (FIG. 1).

The server H-TSP returns (S98) the account number C-PAN to the serverH-SV which forwards (S100) it to the bank system IS of the issuer aspart of a transaction request, along with any other useful informationthat may have been received in the transaction data DR2 (amount, date .. . ). As already mentioned with respect to FIG. 2, the issuer IS maybe, for instance, the issuing bank of the mobile payment card C1.

The issuer IS may then process the payment transaction based on theaccount number C-PAN allocated to the mobile payment card C1 to operatewith the home payment network H-NT.

In this example, the bank system IS of the issuer, the servers H-SV andthe server H-TSP are part of the home payment network R-NT.

The servers H-TSP and R-TSP form together a token managing system 51which is configured to perform a double detokenization, i.e. the firstdetokenization S88 (R-PAN converted into H-PAN) and the seconddetokenization S96 (H-PAN converted into C-PAN).

Thanks to this double detokenization process, interoperability can beachieved between different payment systems while ensuring that thepayment transactions are performed securely.

FIG. 8 depicts, in accordance with another embodiment of the invention,how a payment transaction can be performed by the mobile device DV usingthe mobile payment card C1 in the roaming payment network R-NT, once theconfiguration S70 (FIG. 6) with the data DT2 is completed.

The transaction process is performed in substance as shown in FIG. 7,except that it is assumed that no host-to-host communication can beachieved between the roaming payment network R-NT and the home paymentnetwork H-NT in this case. This embodiment thus differs from the exampleof FIG. 7 in that the server TSO as already mentioned earlier (FIGS. 5Aand 5B) is used as a routing interface between the roaming paymentnetwork R-NT and the home payment network H-NT during the transactionprocess.

As shown in FIG. 8, once the home token determination S88 is completed,the server R-TSP sends (S110) the home token H-PAN to the server TSO ina transaction request. The server TSO routes (S112) the transactionrequest including the home token H-PAN from the server R-TSP to theserver H-TSP.

The server H-TSP determines the primary account number C-PAN in step S96and the transaction processing proceeds further in the same manner as inthe embodiment of FIG. 7.

The servers H-TSP, the server TSO and the server R-TSP form together atoken managing system S2 which is configured to perform a doubledetokenization, i.e. the first detokenization S88 (R-PAN converted intoH-PAN) and the second detokenization S96 (H-PAN converted into C-PAN).

It should be noted that the routing S112 of the home token H-PAN to theserver H-TSP may be performed by a server which is not in charge ofproviding the roaming information RI to the mobile device DV (stepsS42-S46, FIG. 3) or of provisioning the set of data DT2 (steps S62-S66,FIG. 6) at the first place. In a variant, the routing S112 shown in FIG.8 is performed by any appropriate server other that the server TSOpreviously described.

FIG. 9A shows, in accordance with a particular embodiment of theinvention, the structure of the server R-TSP as already described above.In this example, the server R-TSP presents the hardware architecture ofa computer. In particular, the server R-TSP comprises a processor 40, arewritable non-volatile memory 42 (e.g., a Flash), a RAM memory 44 and acommunication interface 46. Some elements typically included in a serverhave been voluntarily omitted in the present embodiment to enhanceclarity of the present disclosure.

The rewritable non-volatile memory 42 of the server R-TSP constitutes anon-transitory recording medium in accordance with a particularembodiment of the invention. This memory includes a computer program PG3according to a particular embodiment of the invention, this computerprogram comprising instructions to implement a method according to aparticular embodiment of the invention as already described withreference to FIGS. 7 and 8.

The rewritable non-volatile memory 42 may also store data R-DTcomprising the home token H-PAN in association with the roaming tokenR-PAN of the mobile payment card C1 (as already described with referenceto FIG. 6).

The communication interface 46 enables the server R-TSP to communicatewithin the roaming payment network R-NT and, in the particular case ofFIG. 8, with the server TSO.

The processor 40, piloted by the computer program PG3, implements anumber of functional modules as depicted in FIG. 9B, that is: areceiving module MD40, an obtaining module MD42 and a sending moduleMD44.

The receiving module MD40 is configured to receive the roaming tokenR-PAN allocated to the mobile payment card C1 for operating in theroaming payment network R-NT, as already described with respect to FIGS.7 and 8.

The obtaining module MD42 is configured to determine, based on theroaming token R-PAN, the corresponding home token H-PAN allocated to themobile payment card C1 for operating in the home payment network H-NTwhich is different from the roaming payment network R-NT. To this end,the obtaining module MD42 consults the stored data R-DT.

The sending module MD44 is configured to send the home token H-PANeither to the server R-SV (FIG. 7) or to the server TSO (FIG. 8).

FIG. 10A shows, in accordance with a particular embodiment of theinvention, the structure of the server H-TSP as already described abovewith respect to FIGS. 7-8. In this example, the server H-TSP presentsthe hardware architecture of a computer. In particular, the server H-TSPcomprises a processor 50, a rewritable non-volatile memory 52 (e.g., aFlash), a RAM memory 54 and a communication interface 56. Some elementstypically included in a server have been voluntarily omitted in thepresent embodiment to enhance clarity of the present disclosure.

The rewritable non-volatile memory 52 of the server H-TSP constitutes anon-transitory recording medium in accordance with a particularembodiment of the invention. This memory includes a computer program PG4according to a particular embodiment of the invention, this computerprogram comprising instructions to implement a method according to aparticular embodiment of the invention as already described withreference to FIGS. 7 and 8.

The rewritable non-volatile memory 52 may also store data H-DTcomprising the account number C-PAN in association with the home tokenH-PAN of the mobile payment card C1 (as already described with referenceto FIG. 6).

The communication interface 56 enables the server H-TSP to communicatewithin the home payment network R-NT and, in the particular case of FIG.8, with the server TSO.

The processor 50, piloted by the computer program PG4, implements anumber of functional modules as depicted in FIG. 10B, that is: areceiving module MD50, an obtaining module MD52 and a sending moduleMD54.

The receiving module MD50 is configured to receive the home token H-PANallocated to the mobile payment card C1 for operating in the homepayment network H-NT, as already described with respect to FIGS. 7 and8.

The obtaining module MD52 is configured to determine, based on the hometoken H-PAN, the corresponding PAN, so-called C-PAN, allocated to themobile payment card C1 for operating in the home payment network H-NT.To this end, the obtaining module MD52 consults the stored data H-DT.

The sending module MD54 is configured to send the account number C-PANto the system of the bank issuer IS.

The present invention provides for an efficient roaming mobile paymentsolution. In particular, instead of using a single global paymentnetwork, the invention allows interoperability of mobile payment cardswith multiple payment networks that a user may access using his/hermobile device.

As mentioned earlier, a user roaming in different areas (e.g., changingcountries) may happen to be out of reach of a national payment networkhis/her mobile payment card is configured to operate with. Additionally,a user may not wish or be able to use an international payment network.The invention allows configuring a digital wallet application so that itcan use a mobile payment card while in a situation of roaming in a givenroaming payment network. Thanks to the invention, it is possible todynamically adapt the configuration of a digital wallet application sothat transactions can be made in a roaming payment system, such as alocal or national payment network.

The invention obviates the need for a global (international) paymentnetwork. Instead of using global payment networks, when a user isroaming outside his national (or regional) payment network, a mobilebank transaction may be advantageously performed in another national (orregional) payment network. The invention can ensure adequateinteroperability between distinct payment systems having differentspecifications, such that using an international payment network is nolonger required. Domestic banking schemes can get internationalacceptance via roaming agreements with other banking schemes. Standardco-badge bi-lateral contacts and host-to-host integrations can forinstance be signed.

Thanks to the invention, a mobile device may automatically configure adigital wallet application depending on the mobile device's position.The parameters and visual aspects (logo, appearance . . . ) of thedigital wallet application may be adapted accordingly to inform the userof the roaming re-configuration. In particular, the card picture, logoand/or colours may be adapted as needed.

Interoperability is ensured between scheme partners while an adequatelevel of security can be maintained in the transaction process. Byperforming a double detokenization during the transaction, the inventionallows each payment system to use its tokens in an efficient manner.

The invention overcomes the problems and drawbacks mentioned earlier andthis without the burden of conceiving and deploying a worldwidestandardised payment system.

The digital wallet application may contain and manage a plurality ofmobile payment cards and allow each of these cards to be used in aroaming payment network in accordance with the present invention. Aspecific payment application may be implemented in the mobile device foreach mobile payment card present in the digital wallet.

Particular variants of the embodiments shown in FIGS. 7 and 8 are nowdescribed with reference to FIGS. 12-15.

More particularly, FIG. 12 represents a variant which differs from theembodiment of FIG. 8 in that it is the server TSO which performs thefirst detokenization by obtaining the home token H-PAN based on theroaming token. This is possible because the server has previously storedthe home token H-PAN in association with roaming token R-PAN, asdescribed for instance in the variant shown in FIG. 11. In the variantshown in FIG. 12, the server R-TSP thus does not perform the firstdetokenization step S88 and transmits in S110 the roaming token R-PAN tothe server TSO. It is the server TSO which converts the roaming tokenR-PAN into the corresponding home token H-PAN and transmits this H-PANin S112 to the server H-TSP.

In another variant, the server R-SV transmits the roaming token R-PAN inS86 directly to the server TSO. In this case, there is thus no need forthe server R-TSP to transmit the roaming token R-PAN from the serverR-SV to the server TSO.

As can be understood from the embodiments described above, thedouble-detokenization process may thus be performed in various serversor other entities.

FIG. 13 represents a variant which differs from the previous embodimentsof FIGS. 8, 9 and 12 in that the payment terminal T (in a point of sale,for instance) has not the capacity to communicate bilaterally with theuser device DV. In this variant, when the user UR and a merchant wish toinitiate a payment transaction, the merchant configures the paymentterminal T so that it displays on a screen a graphic code, such as a QRcode (or bar code) for instance. The user UR positions his mobile deviceDV facing the payment terminal and the mobile device DV acquires orreads (S150) the QR code using a camera (not shown) of the mobile deviceDV (scan & pay process). The mobile device DV then determines, based onthe QR code, the set of data DT2 as previously described in the previousembodiments, and transmits (S154) this set of data DT2 to a server M-SVof the merchant. The set of data DT2 comprises the roaming token R-PANand information on the transaction (transaction identifier, amount . . .). Based on the QR code, the mobile device DV may also determine theaddress of the server M-SV to which the set of data DT2 is to betransmitted.

In parallel, the payment terminal also transmits (S152) transaction dataDT3 comprising for instance the transaction identifier and thetransaction amount. The server M-SV of the merchant then checks that theset of data DT2 received from the mobile device DV and the transactiondata DT3 received from the payment terminal T match and, if there is amatch, the merchant server M-SV transmits (S156) the set of data DT2 tothe bank system AC of the acquirer for further processing as describedin the other embodiments.

As can be understood from the embodiment of FIG. 13, a scan & payprocess may thus be applied to the concept of the present inventionwhich is based on double-tokenization and double-detokenization.

FIG. 14 represents a variant which differs from the previous embodimentsin that a 3-D Secure (3DS) authentication process is performed toauthenticate a user UR who wishes to perform an online paymenttransaction.

3-D Secure is a well-known XML-based protocol designed as an additionalsecurity layer for online payment transactions.

In the variant of FIG. 14, it is assumed that the user UR carries hisfirst mobile device DV for accessing his digital wallet application DWAand wishes to perform an online payment transaction on a merchant'swebsite WB. To this end, the user uses a second device DV2 for accessingthe merchant's website WB. The second device DV2 may be of anyappropriate type (PC, tablet . . . ) and may be the same as the firstdevice DV1 or different from the first device DV1.

An authentication phase is first performed in accordance with the IDSprotocol to authenticate the user UR prior to validating the paymenttransaction.

In a step S170, the user UR configures his mobile device DV so that itdisplays the roaming token R-PAN that was previously allocated to theuser (as described earlier) to perform roaming payments in the roamingpayment network R-NT. The user UR then uses his second device DV2 toenter (S172), on the merchant's website WB, card data allocated to themobile payment card C1 for operating in the roaming payment networkR-NT, this card data including the roaming token R-PAN, the expiry dateand the card verification value CW of the mobile card C1. In a stepS174, the second device DV2 transmits the card data including theroaming token R-PAN to a server M-SV of the merchant managing thewebsite WB.

This server M-SV transmits (S176) the roaming token R-PAN to a directoryserver DS which then transmits (S178) it to a server TSO2 of a tokenservice provider. The server TSO2 may be the same as the server TSO or adifferent one.

In a step S180, the server TSO2 transmits the roaming token R-PAN to theserver R-TSP which performs a first detokenization to obtain the hometoken H-PAN based on R-PAN. The server R-TSP then transmits (S182) thehome token H-PAN resulting from this first detokenization back to theserver TSO2. In a step S184, the server TSO2 transmits the home tokenH-PAN to the server H-TSP which performs a second detokenization toobtain the corresponding PAN number C-PAN of the mobile payment card C1based on the home token H-PAN. The server H-TSP then transmits (S186)the PAN number C-PAN back to the server TSO2. A double detokenization isthus performed by the servers R-TSP and H-TSP to obtain the PAN numberC-PAN of card C1 based on the roaming token R-PAN.

In a step S188, the server T502 forwards the PAN number C-PAN to an ISAccess Control (ACS) server, noted server ACS. Based on the PAN numberC-PAN, the server ACS determines the contact information associated withthe user UR. In this example, the servers ACS determines a phone numberstored in association with the C-PAN of the mobile payment card C1. In astep S190, the server ACS transmits a 3DS code CS1 (a sequence ofnumbers for instance) to the user UR. In this example, the UR receivesthe code CD1 on his mobile device DV (e.g. a smartphone).

The user UR may then enter (S191) the 3DS code, noted CD2, on thewebsite WB using his second device DV2. Once it is received, the seconddevice DV2 transmits (S192) the 3DS code CD2 to the server ACS by anyappropriate communication means. Other embodiments are however possibleto provide the server ACS with the 3SD code CD2. According to anotherembodiment, in step S190, a mobile application in the mobile device DVmay receive an authentication request from the server ACS. The user URmay use this mobile application to authenticate himself in S191 byentering the 3DS code received in S190. The mobile application in themobile device DV may then forwards in S192 the 3DS code to the serverACS to confirm authentication.

The server ACS then checks whether the 3DS code CD2 entered by the userUR on the device DV2 matches the original code CD1 that was previouslyprovided by the server ACS in step S190. In case there is a match, theserver ACS transmits (S193) a notification to the server TSO2,indicating that the authentication is successful. In response thereto,the server TSO2 generates a cryptogram CRY, called an authenticationverification cryptogram, and transmits (S194) it to the directory serverDS which forwards (S196) it to the server M-SV. In a step S198, theserver M-SV transmits the cryptogram CRY and the transaction dataincluding the roaming token R-PAN to the bank system AC of the acquirerfor proceeding with the payment transaction.

As already described with reference to the previous embodiments, adouble detokenization is then performed again to validate the paymenttransaction. The bank system IS of the issuer authorizes the paymenttransaction only if it receives the cryptogram CRY indicating that theuser UR has been authenticated.

As can be understood from this embodiment, the 3DS authenticationprocess may thus be applied to the concept of the present inventionwhich is based on double-tokenization and double-detokenization.

Neither merchants nor payment card issuers are usually required tosupport 3DS for online transactions. In case either the merchant and/orthe issuer does not support 3DS, then the second device DV2 may in stepS174 transmit directly the transaction data, including the roaming tokenR-PAN, to the bank system AC of the acquirer for proceeding with thepayment transaction. The steps S176 to S198 (FIG. 14) are thus notperformed.

FIG. 15 represents a variant which differs from the previous embodimentsin that a merchant's application APP1 is pre-installed in the mobiledevice DV of the user UR. In a case where the user UR wishes to performan online payment transaction on a merchant's website using his mobiledevice DV, the user UR may execute or invoke (S220) the application APP1pre-installed on the mobile device DV. In practice, the user UR maycomplete payment by triggering a checkout button in the merchant'sapplication APP1 run on the mobile device DV. In response thereto, themobile device DV transmits (S222) card data of the mobile payment cardC1 to a checkout provider server CP-SV, i.e. card data, including theroaming token R-PAN, which was previously allocated to the mobilepayment card C1 to operate in the roaming payment network R-NT.

In a step S224, the server CP-SV transmits the card data including theroaming token R-PAN to a server M-SV of a merchant. The server M-SV thentransmits (S226) the transaction data along with the roaming token R-PANto the bank system AC of the acquirer for proceeding with the paymenttransaction as already described earlier.

As can be understood from this embodiment, an in-app online transactionprocess may thus be applied to the concept of the present inventionwhich is based on double-tokenization and double-detokenization.

The variants described earlier with respect to FIG. 12 may apply to anyembodiment described in the present document, including the embodimentsdepicted in FIGS. 13, 14 and 15. Namely, the server TSO may beconfigured to perform the first detokenization step itself for all theembodiments described in the present document.

The flowcharts and/or block diagrams in the figures illustrate theconfiguration, operation and functionality of possible implementationsof devices, systems, methods and computer program products according tovarious embodiments of the present disclosure. In this regard, eachblock in the flowcharts or block diagrams may represent a module,segment, or portion of code, which comprises one or more executableinstructions for implementing the specified logical function(s).

While not explicitly described, the present embodiments may be employedin any combination or sub-combination thereof.

The present invention having been described in particular embodiments,it is clear that it is susceptible to numerous modifications andembodiments within the ability of those skilled in the art and withoutthe exercise of the inventive faculty. Accordingly, the scope of theinvention is defined by the scope of the following claims.

1. A method implemented by a mobile device for managing a digital walletapplication, said digital wallet application being initially configuredwith a first set of data associated with a mobile payment card forperforming transactions in a home payment network, said methodcomprising: sending an information request containing locationinformation representative of a current position of the mobile device;receiving, in response to said information request, roaming informationidentifying at least one roaming payment network that is available inthe current position of the mobile device; selecting a roaming paymentnetwork based on said roaming information; obtaining a second set ofdata allocated to the mobile payment card for operating in the selectedroaming payment network; and configuring said digital wallet applicationwith said second set of data so that the digital wallet application canuse the mobile payment card in the selected roaming payment network. 2.The method of claim 1 comprising, once the configuring step iscompleted, a step of performing a transaction using the mobile paymentcard in the selected roaming payment network.
 3. The method of claim 1,wherein said information request is sent upon detection that said mobiledevice is roaming out of reach of said home payment network.
 4. Themethod of claim 1, wherein the location information comprises at leastone of: geographical information representative of a geographicalposition of the mobile device; and a network identifier indicating acellular network, or a part thereof, to which the mobile device isconnected.
 5. The method of claim 1, wherein the roaming informationincludes at least one of: parameters associated with at least oneroaming bank network, said parameters defining at least one of servicerates and an acceptance area; and priority information defining apriority order according to which each roaming payment network is to beselected by the mobile device.
 6. The method of claim 1, wherein thefirst set of data includes a first identifier of the mobile payment cardin the home payment network, and wherein the step of obtaining step asecond set of data includes: sending, to a first server, a provisioningrequest for the selected roaming payment network, said provisioningrequest including said first identifier; receiving, from the firstserver, the second set of data which includes: a roaming token allocatedto the mobile payment card for operating in the selected roaming paymentnetwork, and an identifier of said roaming token.
 7. The method of claim1, wherein the first set of data includes a home token corresponding toa primary account number allocated to the mobile payment card foroperating in the home payment network.
 8. The method of any claim 7comprising, prior to the step of sending the information request, a stepof initially configuring wherein said mobile device: obtains the primaryaccount number allocated to said mobile payment card for operating inthe home payment network; sends said primary account number to a firstserver; and receives, in response to said primary account number, thefirst set of data.
 9. A processing method implemented by a first serverin cooperation with a mobile device managing a digital walletapplication, said method comprising: receiving an information requestcontaining location information representative of a current position ofthe mobile device; determining, based on the location information, atleast one roaming payment network which can be accessed by the mobiledevice; sending, to the mobile device, roaming information identifyingsaid at least one roaming payment network; receiving, from the mobiledevice, a provisioning request for a roaming payment network selected bysaid mobile device from among said at least one roaming payment network;obtaining a second set of data allocated to the mobile payment card foroperating in the selected roaming payment network; and sending thesecond set of data to the mobile device for configuring the digitalwallet application so that the digital wallet application can use themobile payment card in the selected roaming payment network.
 10. Themethod claim 9, wherein the location information comprises at least oneof: geographical information representative of a geographical positionof the mobile device; and a network identifier indicating a cellularnetwork, or a part thereof, to which the mobile device is connected. 11.The method of claim 9, wherein the first server determines said at leastone roaming payment network by consulting a database which storesnetwork information characterising at least one payment network whichcan be accessed in a particular area.
 12. The method of claim 9, whereinthe roaming information includes at least one of: parameters associatedwith at least one roaming bank network, said parameters defining atleast one of service rates and an acceptance area; and priorityinformation defining a priority order according to which each roamingpayment network is to be selected by the mobile device.
 13. The methodof claim 9, wherein the second set of data is different from a first setof data with which the digital wallet application is initiallyconfigured, prior to the step of sending the second set of data, forperforming transactions in a home payment network different from saidroaming payment network.
 14. The method of claim 13, wherein theprovisioning request includes a first identifier of the mobile paymentcard in the home payment network, said first identifier being part ofsaid first set of data; and wherein the second set of data includes aroaming token of the mobile payment card in the roaming payment networkand a second identifier associated with the roaming token.
 15. Themethod of claim 14, wherein the step of obtaining the second set of dataincludes: sending the first identifier of the mobile payment card to asecond server of a home token service provider; receiving, from saidsecond server, a home token of the mobile payment card in the homepayment network; sending, to a third server of a roaming token serviceprovider, said home token; and receiving, from said third server, thesecond set of data.
 16. The method of claim 9, wherein the second set ofdata includes at least one of: visual parameters for configuring thevisual appearance of the digital wallet application to indicate that themobile payment card is used in the selected roaming payment network; aroaming payment application to be installed in the mobile device forinteracting with the digital wallet application when the mobile paymentcard is used in the roaming payment network; and an expiration date ofthe mobile payment card for the selected roaming payment network. 17.(canceled)
 18. A mobile device for managing a digital walletapplication, the mobile device comprising: a localisation module forsending an information request containing location informationrepresentative of a current position of the mobile device, wherein thedigital wallet application is configured with a first set of dataassociated with a mobile payment card for performing transactions in ahome payment network; a receiving module for receiving, in response tosaid information request, roaming information identifying at least oneroaming payment network that is available in the current position of themobile device; a selecting module for selecting a roaming paymentnetwork based on said roaming information; a data obtaining module forobtaining a second set of data allocated to the mobile payment card foroperating in the selected roaming payment network; and a configuringmodule for configuring said digital wallet application with said secondset of data so that the digital wallet application can use the mobilepayment card in the selected roaming payment network.
 19. A first serverconfigured to implement a processing method in cooperation with a mobiledevice managing a digital wallet application, the first servercomprising: a localisation module for receiving an information requestcontaining location information representative of a current position ofthe mobile device; a determining module for determining, based on thelocation information, at least one roaming payment network which may beaccessed by the mobile device; a first sending module for sending, tothe mobile device, roaming information identifying said at least oneroaming payment network; a request processing module for receiving, fromthe mobile device, a provisioning request for a roaming payment networkselected by said mobile device from among said at least one roamingpayment network; a provisioning module for obtaining a second set ofdata allocated to the mobile payment card for operating in the selectedroaming payment network; and a second sending module for sending thesecond set of data to the mobile device for configuring the digitalwallet application so that the digital wallet application can use themobile payment card in the selected roaming payment network.